Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/hcGd_HrIA4Po2PMtabdll4kw2p8.roa
File: hcGd_HrIA4Po2PMtabdll4kw2p8.roa (raw, json)
Hash identifier: nsHRA1yI4laOIZEFQZBbsTDAxQXJnTbyNI/xdYltaFE=
Subject key identifier: 85:C1:9D:FC:7A:C8:03:83:E8:D8:F3:2D:69:B7:65:97:89:30:DA:9F
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 10AF
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/hcGd_HrIA4Po2PMtabdll4kw2p8.roa
Signing time: Wed 01 Feb 2023 10:28:53 +0000
ROA not before: Wed 01 Feb 2023 10:28:53 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 60.245.64.0/19 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4271 (0x10af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:53 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=85C19DFC7AC80383E8D8F32D69B765978930DA9F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:52:f3:50:15:fe:3a:53:a6:f6:c9:68:b7:97:
3a:84:21:ae:24:e7:fa:d4:c9:b4:a0:3f:12:78:94:
9f:7f:15:07:07:91:c5:61:36:3f:9e:9d:7f:41:87:
80:6c:9a:92:1b:94:cb:a9:6a:cf:d6:87:93:12:47:
25:b9:07:1e:af:30:b8:7f:17:d3:5c:46:6d:2c:f2:
22:35:29:b8:f9:28:9c:c8:94:09:5b:2a:15:d2:0c:
d0:58:55:b4:24:f8:ae:98:27:8f:34:79:e2:f1:45:
0f:3c:07:19:3b:67:c0:70:31:75:88:e9:00:5a:4e:
bf:12:3a:b1:20:1f:75:9d:dd:b5:d9:96:00:38:85:
65:34:12:68:39:9f:65:a3:f1:d3:3f:86:47:d1:95:
8a:cd:30:56:db:76:c9:ac:14:65:51:92:d8:5c:36:
9f:7c:55:46:34:a9:11:79:2b:37:d1:38:d2:6e:18:
93:26:1c:fc:32:97:1b:7d:0b:82:4d:1c:30:63:09:
ed:78:64:66:72:b7:10:c6:00:e9:5c:9d:c3:86:62:
71:ed:41:a4:50:b9:48:f7:2a:58:5f:e8:8a:c0:a2:
29:69:80:94:ae:4c:5b:5b:19:ad:2a:49:b3:20:98:
66:c1:bc:cb:40:ce:26:59:e6:cb:c4:3a:ae:82:59:
db:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:C1:9D:FC:7A:C8:03:83:E8:D8:F3:2D:69:B7:65:97:89:30:DA:9F
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/hcGd_HrIA4Po2PMtabdll4kw2p8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.245.64.0/19
Signature Algorithm: sha256WithRSAEncryption
2a:67:63:c7:75:ab:2c:7e:06:bd:8d:6e:75:e9:eb:19:84:07:
80:36:97:5b:55:6d:a4:68:01:2d:a6:fd:92:0f:07:84:e7:82:
e9:5b:e6:13:14:05:82:7d:4f:81:a4:6e:f9:82:e4:9e:ac:2f:
70:14:c3:f7:19:06:3b:18:ea:1a:42:3f:8b:2d:3b:37:8c:1d:
be:b7:11:0c:1c:44:8e:60:3a:41:9c:38:f2:0e:ec:63:60:c8:
9c:28:26:0c:d1:84:8f:44:22:65:94:d2:54:22:b0:ae:69:89:
5f:0a:3e:8b:c0:4c:f7:4a:8f:7c:46:9c:b1:7c:08:09:e6:01:
63:64:eb:9b:5e:e3:7b:8c:bd:75:1d:41:1e:99:95:4e:40:59:
f9:4e:e7:07:7e:24:4f:ac:63:b7:79:55:cc:c4:3d:2c:5f:23:
f6:6b:9b:4b:63:1d:82:5c:3d:af:ab:0e:3b:30:1f:98:6a:73:
85:a7:e8:d5:28:0e:a7:69:41:f9:ad:1d:4e:09:cd:cc:f5:1f:
44:f4:b1:df:e3:58:7c:bd:c8:ca:6b:c1:5c:be:b1:e5:e9:e6:
44:f1:19:74:2a:ae:f3:26:07:11:3a:f5:b2:24:43:0d:19:1a:
9e:57:9a:44:c4:db:01:ff:e8:85:a7:b1:33:be:86:a0:6f:a0:
94:f1:55:09
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICEK8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzAyMDEx
MDI4NTNaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDg1QzE5REZDN0FDODAz
ODNFOEQ4RjMyRDY5Qjc2NTk3ODkzMERBOUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCtUvNQFf46U6b2yWi3lzqEIa4k5/rUybSgPxJ4lJ9/FQcHkcVh
Nj+enX9Bh4BsmpIblMupas/Wh5MSRyW5Bx6vMLh/F9NcRm0s8iI1Kbj5KJzIlAlb
KhXSDNBYVbQk+K6YJ480eeLxRQ88Bxk7Z8BwMXWI6QBaTr8SOrEgH3Wd3bXZlgA4
hWU0Emg5n2Wj8dM/hkfRlYrNMFbbdsmsFGVRkthcNp98VUY0qRF5KzfRONJuGJMm
HPwylxt9C4JNHDBjCe14ZGZytxDGAOlcncOGYnHtQaRQuUj3Klhf6IrAoilpgJSu
TFtbGa0qSbMgmGbBvMtAziZZ5svEOq6CWdtLAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUhcGd/HrIA4Po2PMtabdll4kw2p8wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvaGNHZF9IcklBNFBvMlBNdGFiZGxs
NGt3MnA4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBTz1QDAN
BgkqhkiG9w0BAQsFAAOCAQEAKmdjx3WrLH4GvY1udenrGYQHgDaXW1VtpGgBLab9
kg8HhOeC6VvmExQFgn1PgaRu+YLknqwvcBTD9xkGOxjqGkI/iy07N4wdvrcRDBxE
jmA6QZw48g7sY2DInCgmDNGEj0QiZZTSVCKwrmmJXwo+i8BM90qPfEacsXwICeYB
Y2Trm17je4y9dR1BHpmVTkBZ+U7nB34kT6xjt3lVzMQ9LF8j9mubS2Mdglw9r6sO
OzAfmGpzhafo1SgOp2lB+a0dTgnNzPUfRPSx3+NYfL3IymvBXL6x5enmRPEZdCqu
8yYHETr1siRDDRkanleaRMTbAf/ohaexM76GoG+glPFVCQ==
-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:16 2023 by rpki-client on console-fra.rpki-client.org